Denial of Service Vulnerability in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell
CVE-2025-55631

4MEDIUM

Key Information:

Vendor: Reolink
Status: Smart 2K+ Plug-in Wi-Fi Video Doorbell
Vendor: CVE Published:; 22 August 2025

What is CVE-2025-55631?

The Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell is affected by a vulnerability that manages user sessions at a system-wide level rather than on an individual account basis. This design flaw can potentially allow an attacker to exploit the device, leading to resource exhaustion and subsequent Denial of Service (DoS), disrupting access for legitimate users.

References

https://relieved-knuckle-264.notion.site/Token-max-Dos-23...

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 22, 2025
Vulnerability Reserved
Aug 13, 2025

CVE-2025-55631 Data

JSON